In the Specification 
Please replace paragraphs f 0001 J through [0016] with the following: 
Related Application 

This is a $37 1 of International Application No. PCT/FR03/02466, with an international filing 
date of August 5. 2003 (WO 2004/0 1 557 L published February 1 9. 2004). which is based on French 
Patent Application No. 02/10000. filed August 6, 2002. 
Field of the Invention 

Th e pr e s e n t This invention pertains to the field of communication between applications within 
an operating system. In fact, in the standard computer operating systems suchas_[[(]] Windows'^^j 
et6? 4 and the like , the-launched applications exchange messages by means of the system in ord e r t o 
obtain information regarding each other. Th e pr e s e nt This invention th e r e for e has th e int e ntion of 
respondin g responds to the problem of confidentiality on the Internet by preventing certain or all 
applications to have access, e.g., to the user data collected by a navigator. 
Background 

It is increasing illusory to believe that it is possible to surf the net without being subject to 
spying. Numerous "fi'ee" programs available on the Internet take advantage of the access that the 
user grants them by installing them for spying on the user's connections and drawing up a consumer 
profile to be sold. Worse, certain programs have the objective of bringing back to their creators 
notably passwords, identifiers, credit card numbers and all other types of personal information 
pertaining to the user. The method used by these spy programs (spyware) is simple: since most of 
the operating systems are created such that the applications can dialogue with each other, these 
spyware programs simply demand fi*om the navigator the address of the site or the value of certain 
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fields of a web page (whether or not in Secure Sockets Layer mode) filled out by the user and the 
navigator provides the spyware with this information. 

Alr e ady Icnown in th e prior art from th e Am e rican patent US fter^,000,032 isdiscloses a 
device and a procedure for obtaining a security value which enables a calling module to access in a 
secure manner a called module in a digital computer. ThisThat device makes it possible to grant 
access to a program module solely upon presentation of a predefined value. However, the problem 
resolved by thisthat device is the protection of a software program system from hostile attacks while 
authorizing the identified interlocutors to access the data. The procedure employs relatively 
complicated calculations intended to determine the rights of the calling module. T teThat invention 
of th e prior art thus does not respond to the same technical problem and the solution that it proposes 
is too complicated to b e iriipl e m e nt e d for th e probl e m that the pr e s e nt inv e ntion int e nds to r e solv e. 

On the other hand, a known solution consists of developing alternatives to the widely 
distributed applications in a manner so as t o profit from the ignorance of the new applications by the 
spyware programs. ThisThat solution has as aj^rincipal and fundamental limit that when the 
alternative becomes known, the developers of the spyware programs integrate it in the list of 
applications with which they can conmiunicate. 

Th e pr e s e nt inv e ntion has th e int e ntion of r e solving th e drawbacks of th e prior art by 
proposing a syst e m using th e standard inter application m e ssag es of th e op e rating syst e m in ord e r to 
impl e m e nt a control of acc e ss to th e se data by an application. 
Summary of the Invention 

This invention relates to a procedure for communication between at least two applications A 
and B in an operating system intended to prevent application A from accessing information content 
of an application window B. including creating at least one variable bv application B. receiving a 
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request from application A by application B, verifying a value of the variable by application B to 
verify validity of the request or of authenticating its origin, and responding to the request as a 
function of the value and/or the origin. 
Brief Description of the Drawings 

Better understanding of the invention will be obtained from the description below, presented 
for purely explanatory purposes, of one mode of implementation of the invention with reference to 
the attached figures: 

Fig. 1 illustrates the standard process of conmiunication between two applications: and 
Fig. 2 illustrates the procedure for communication between two applications according to 

aspects of the invention. 

Detailed Description 

This invention resolves the drawbacks of the prior art by providing a system using the 
standard inter-application messages of the operating system to implement a control of access to these 
data by an application. 

In ord e r to accomplish this, th e pr e sent The invention is of the typo d e scrib e d abov e and it is 
remarkable in its broadest sense in that it pertains to a procedure for communication between at least 
two applications A and B in an operating system intended to prevent application B from accessing 
the information content of an application window A, charact e riz e d in that it compris e s comprising the 
following steps: 

[[- ]]a step of creation of at least one variable by application A; 
[[- ]]a step of reception of a request from application B by application A; 
[[- ]]a step of verification of the value of saidthe variable by application A with the goal of 
verifying the validity of saidthe request or of authenticating its origin; 
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[[- ]]a step of response to smdthe request as a function of saidthe value and/or satdthe origin. 

In one particular case of the invention, the two applications A and B are the same, i.e., A is 
equal to B. The procedure then comprises an additional step consisting of modifying the value of the 
variable for which sai4the request is considered valid. The verification step is advantageously 
implemented by an overloaded function of the operating system. The operating system is preferably 
Microsoft Windows™^ but it can also be any other operating system capable of using/managing 
messages between applications. 

According to one mod e of impl e m e ntatio n aspect of the invention, smdthe value verified by 
application A is different fi"om a predefined value and the response step consists of not satisfying 
said request. According to another mod e of impl e m e ntation, sai d aspect, the value verified by 
application A is equal to a predefined value and the response step consists of satisfying sm4the 
request. 

B e tt e r und e rstanding of th e pr e s e nt inv e ntion will b e obtain e d from th e d e scription b e low, 
pr e s e nt e d for purely e xplanatory purposes, of one mod e of implem e ntation of the inv e ntion with 
r e f e r e nc e to the attach e d figur e s: 

figure 1 illustrat e s th e standard proc e ss of communication betv/ ee n two applications; 

figur e 2 illustrat e s th e proc e dur e for communication betw ee n two applications according to 
the inv e ntion. 

According to one pr e f e rr e d mod e of impl e m e ntatio n aspect of the invention, the invention 
pertains to the Windows™ operating system in its most widely used versions. In this operating 
system, an application A, which can be an instant messaging program equipped with a spy program, 
attempts to recover the value of the URL field of an application window B which can be, e.g., an 
Internet navigator. 
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In a standard operating system, the applications communicate according to the procedure 
described above and as illustrated in figufeFig. 1. 

hi step (1), an application A addresses a message to an application B in ord e r to obtain 
information on the elements of application B. 

Please replace paragraphs [0019] through [0020] with the following: 

hi a system comprising an application B equipped wi feto effect the procedure according to 
aspects of the invention, the-communications between another application A and saidthe application 
B are illustrated in figureFig. 2. 

hi step (4), an application A addresses a message to an application B in ord e r t o obtain 
information oil the elements of application B. 

Please replace paragraphs [0022] through [0023] with the following: 

If the value authorizes that response to the message, application B responds to application A 
in the same manner as in the standard procedure (step 6). In the contrary case, application B does not 
respond to application A but informs the operating system that the message was processed (step 7), 

Please replace paragraph [0025] with the following: 

An application A desiring to obtain information from an application B generates a 
"send_message" command with as param e t e rs the message type and ^le-identity of the addressee 
parameters . If the target application B is a navigator and the application attempts to obtain the 
content of the URL field of application B, the message type will be CB_GETLBTEXT and the 
identity of the addressee will be the identifier of the target application window B. This command 
induces the creation of a variable in the registers of application A intended to collect the response of 
the targeted application as well as the-sending e^a message from the operating system containing the 
address of the register variable and the identity of the addressee. 
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Please replace paragraphs [0027] through [0028] with the following: 

Upon creation of the target window, one processing function wasis attributed to this window 
intended in particular to process the messages intended for this window. This function is called 
"DefWindowProc( )" in Microsoft Windows'''^. The messages are thus arranged in a pile. 

For each message of the pile, the processing function reads the message and responds to it by 
filling out the empty fields of the register of application A created upon the emission of the message 
by the application. In certain versions of Microsoft Windows™, these fields are called "wparam" 
and "Iparam", and contain on the one hand the length of the response and on the other hand the 
response. In Microsoft Windows™, if the request consists of obtaining the value of the URL field of 
the navigator, the processing function of the window will read the value contained for the variable 
"ComboBoxEx" (corresponding to said URL field) i n ord e r t o provide the response. 

Please replace paragraph [0030] with the following: 

The procedure according to aspects of the invention consists o fi ncludes performing the 
following operations. 

Please replace paragraph [0031] with the following: 

Prior to any communication and the launching of target application B, of: 

- creating and initiahzing (at 0) a variable of origin in the registers of application B intended 
to subsequently determine the origin of the incoming messages. 

- Upon creation of a window, of creating a new processing function similar to that created by 
default and of overloading this new processing function in ord e r to determine the origin of the 
incoming messages. 
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Please replace paragraph [0035] with the following: 

The invention wasis described above as an example. It is understood that th e e xp e rt one 
skilled in the fi e ld could art can implement different variant s aspects of the invention without th e r e by 
going beyond the scope of the paten tinvention as defined in the appended claims . 
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